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In the Claims 

1 . (Currently Amended) A method for a mobile computing device to 
make authentication information available to a base computing device, the 
method comprising: 

creating authentication information, the authentication information 
including content data that includes data for updating a care-of address of the 
mobile computing device, a public key of the mobile computing device, a 
network address of the mobile computing device, and a digital signature, the 
network address having a route prefix portion and a node-selectable portion 
that includes a portion of a hash value of the public key of the mobile 
computing device port i on der i ved from the pub li c key of the mob il e comput i ng 
dev i ce , the digital signature generated by signing with a private key of the 
mobile computing device corresponding to the public key, the digital signature 
generated from data in the set: the content data, a hash value of data including 
the content data; and 

making the authentication information available to the base computing 

device. 

2. (Previously Presented) A method as in claim 1 wherein the 
authentication information is made available to the base computing device by 
sending a message incorporating the authentication information to the base 
computing device. 

3. -4. (Canceled) 



Page 3 of 15 



Serial No.: 09/833,922 
Filing Date: 04/12/2001 



Attorney Docket No.: 1 71 1 35.01 



5. (Previously Presented) A method as in claim 1 , wherein the base 
computing device is a home agent for the mobile computing device, and 
wherein the network address of the mobile computing device is a home address 
of the mobile computing device. 

6. (Previously Presented) A method as in claim 1 , wherein the base 
computing device is a correspondent of the mobile computing device, and 
wherein the network address of the mobile computing device is a home address 
of the mobile computing device. 

7. (Original) A method as in claim 1 , wherein the public key and the 
private key together form an uncertified key pair. 

8. (Currently Amended) A method as in claim 1 , wherein the network 
address of the mob il e comput i ng dev i ce i nc l udes a route pref i x port i on and a 
node se l ectab l e port i on, and the node se l ectab l e port i on i nc l udes a port i on of o 
hash va l ue of data i nc l ud i ng the pub li c key of the mob il e comput i ng dev i ce. 
node-selectable portion further comprises a hash value of a composite of the 
public key and a modifier. 

9. (Currently Amended) A method as in claim 8, wherein the node- 
selectable portion i nc l udes a port i on of a hash va l ue of data i nc l ud i ng the pub li c 
key of the mob il e comput i ng dev i ce and a mod i f i er se l ected for prevent i ng 
address conf li cts is derived using the modifier with the public key only when 
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using a hash value of the public key alone as the node-selectable portion of the 
address creates an address that is already used by another device . 

1 0. (Original) A method as in claim 1 , wherein the authentication 
information further includes data for preventing a replay attack. 

1 1 . (Original) A method as in claim 1 0, wherein the data for preventing a 
replay attack are in the set: time stamp, data identifying the second computing 
device as an intended recipient of the authentication information. 

1 2. (Currently Amended) A computer-readable storage medium 
containing instructions for performing a method for a first computing device to 
make authentication information available to a second computing device, the 
method comprising: 

creating authentication information, the authentication information 
including content data that include data for updating a care-of address of the 
first computing device, a public key of the first computing device, a network 
address of the first computing device, and a digital signature, the network 
address having a route prefix portion and a node-selectable portion that 
includes a portion of a hash value of data including the public key of the mobile 
computing device and a modifier selected for preventing address conflicts, 
port i on der i ved from the pub li c key of the f i rst comput i ng dev i ce, the digital 
signature generated by signing with a private key of the first computing device 
corresponding to the public key, the digital signature generated from data in the 
set: the content data, a hash value of data including the content data; and 
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making the authentication information available to the second computing 

device. 

1 3. (Currently Amended) A computer-readable storage medium having 
stored thereon a data structure, the data structure comprising: 

content data that include data for updating a care-of address of a 
computing device; 

a public key of the computing device; 

a network address of the computing device, the network address having a 
route prefix portion and a node-selectable portion that includes a portion of a 
hash value of the public key of the mobile computing device port i on der i ved 
from the pub li c key of the comput i ng dev i ce ; and 

a digital signature, the digital signature generated by signing with a 
private key of the computing device corresponding to the public key, the digital 
signature generated from data in the set: the content data, a hash value of data 
including the content data. 

14.-15. (Canceled) 

16. (Currently Amended) A computer-readable storage medium dxbta 
structure as in claim 1 3, wherein the network address of the computing device 
is a home address of the computing device. 

17. (Currently Amended) A computer-readable storage medium d^bta 
structure as in claim 1 3, wherein the node-selectable portion further comprises 
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a hash value of a composite number derived from appending a modifier to the 
public key, network address of the comput i ng dev i ce i nc l udes a route pref i x 
port i on and a node se l ectab l e port i on, and the node se l ectab l e port i on i nc l ude 
a port i on of a hash va l ue of data i nc l ud i ng the pub li c key of the comput i ng 

18. (Currently Amended) A computer-readable storage medium dxbta 
structure as in claim 1 7, wherein the node - se l ectab l e port i on i nc l udes a port i or 
of a hash va l ue of data i nc l ud i ng the pub li c key of the comput i ng dev i ce and a 
mod i f i er se l ected for prevent i ng address conf li cts, modifier is used only if 
deriving the node-selectable portion with the public key results in a network 
address that is in use by another device. 

19. (Currently Amended) A computer-readable storage medium d^bta 
structure as in claim 1 3, wherein the data structure further includes data for 
preventing a replay attack. 

20. (Currently Amended) A method for a second computing device to 
authenticate content data made available by a first computing device, the 
method comprising: 

accessing authentication information made available by the first 
computing device, the authentication information including the content data, a 
public key of the first computing device, a first network address of the first 
computing device, and a digital signature; 
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deriving a node-selectable portion of a second network address by taking 
a portion of a result of hashing [[from]] the public key of the first computing 
device; 

validating the digital signature by using the public key of the first 
computing device; and 

accepting the content data if the der i ved node-selectable portion of the 
second network address matches a corresponding portion of the first network 
address and if the validating shows that the digital signature was generated by 
the first computing device from data i n the set: the content data, a hash va l ue of 
data i nc l ud i ng the content data . 

21 . (Original) A method as in claim 20, further comprising: 
determining whether to accept the content data based on a time stamp in 

the authentication information. 

22. (Original) A method as in claim 20, wherein the content data include 
data for updating a communications parameter for the first computing device, 
the method further comprising: 

updating a record of a communications parameter for the first computing 

device. 

23. (Original) A method as in claim 22, wherein the communications 
parameter is a care-of address of the first computing device, and wherein 
updating includes updating a routing table maintained by the second computing 
device. 
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24. (Currently Amended) A method as in claim 20, wherein the 
authentication information further includes a modifier, and wherein deriving the 
node-selectable portion further includes a portion of a result of hashing a 
composite of the modifier and the public key, append i ng the mod i f i er to the 
pub li c key of the f i rst comput i ng dev i ce before der i v i ng a port i on of the second 
network address. 

25. (Currently Amended) A computer-readable storage medium 
containing instructions for performing a method for a second computing device 
to authenticate content data made available by a first computing device, the 
method comprising: 

accessing authentication information made available by the first 
computing device, the authentication information including the content data, a 
public key of the first computing device, a first network address of the first 
computing device, a modifier and a digital signature; 

deriving a node-selectable portion of a second network address by taking 
a portion of a result of hashing [[from]] the public key of the first computing 
device; 

deriving a node-selectable portion of a second network address as a hash 
value of a composite of the modifier and [[from]] the public key of the first 
computing device; 

validating the digital signature by using the public key of the first 
computing device; and 
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accepting the content data if the der i ved node-selectable portion of the 
second network address matches a correspond i ng node-selectable portion of 
the first network address and if the validating shows that the digital signature 
was generated from a device having knowledge of a private key that 
corresponds to the public key of the first computing device, data i n the set: the 
content data, a hash va l ue of data i nc l ud i ng the content data . 
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